Introduction to Forensics
The course is designed to provide participants with a solid introduction to using the Autopsy platform for forensic analysis. This platform is widely used in the industry for investigating security incidents, data recovery, and cybercrime investigations.
Lessons duration
Self-paced
Lessons difficulty
Beginner
Participation Requirements
This is a beginner-level course; therefore, only basic computer and internet usage skills are necessary to participate.
Furthermore, the tools and software used throughout the course sessions are open-source or free, available without a license for anyone.
Skills Acquired Upon Completion of the Course
- Ability to install and correctly configure the Autopsy platform for performing digital data analysis and forensics.
- Ability to create and manage cases in Autopsy, including adding data sources and configuring ingestion modules for analysis.
- Proficiency in using basic features of Autopsy, including data visualizations, keyword searching, and result filtering to identify relevant information.
- Capability to extract and analyze artifacts from digital data using Autopsy, including understanding how to recover and interpret various types of data such as deleted files, system logs, and web browsing history.
- Capability to generate forensic reports using Autopsy, incorporating analysis results and conclusions. This involves not only using Autopsy’s reporting functionalities but also communicating findings clearly and concisely.
Trainer:
Andrei Ștefănescu
Andrei has over 20 years of experience in IT. He started his career as a system administrator in a television station. The varied requirements allowed him to interact with the IT field in every relevant branch.
His experience grew in areas such as hardware, networking, software development, databases, computer administration with Windows (Server and Workstation), Linux, and OSX operating systems.
Over time, Andrei has held various key positions (Team Leader, IT Manager), having the opportunity to train and coordinate dozens of young people eager to evolve in the IT field. When cybersecurity became an independent, industry-recognized branch, Andrei focused his energy in that direction, becoming a cybersecurity consultant for various public and private entities.
As a consultant, Andrei has had the opportunity to conduct over 200 penetration tests (both at the application and infrastructure levels). He has also been called upon several times to help stop/analyze a cyber attack. In addition to his Red/Blue team activities, Andrei has been a speaker/coordinator at workshops (some with over 100 participants) aimed at development teams, helping them improve their workflow.
Details
Participation Fee: £1,450
During the course, each participant will have access to a computer, virtual lab, notebooks, and writing tools.
Food, water, juices, coffee, and snacks will be provided by the organizers.
AVAILABLE COURSE DATES
Course schedule & chapters
- THEORETICAL MODULE: Introduction to Forensics
- PRACTICAL MODULE: Installation and Configuration of Autopsy
- PRACTICAL MODULE: Case Creation and Management
- PRACTICAL MODULE: Basic Data Analysis
- PRACTICAL MODULE: Extraction and Analysis of Artifacts
- PRACTICAL MODULE: Keyword Search and Results Filtering
- PRACTICAL MODULE: Use of the Timeline Module
- PRACTICAL MODULE: Report Creation
- THEORETICAL MODULE: Ethical and Legal Considerations